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(57) Abstract 



An arrangement to protect software, particularly freely distributed application software, against utilization without permission of the 
copyright holder. By encrypting the software employing a key (kl) which is different from that key (k2) which is employed in the decryption, 
better protection is obtained against unauthorized utilization when the decryption key is kept secret to the user. Further improved security is 
achieved by additionally executing scrambling-descrambling of the communication between the computer in which tiic software is utilized 
and the external unit in which the decryption key is stored. Also, the external unit is arranged such ttizt it returns to the host computer, the 
result firom its processing of data received from fee host, tfie result then being utilized in tibe further execution of the respective program. 
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PROTECTION OF SOFTWARE AGAINST USE WITOOUT PERMIT 



Technical Field 

Present invention relates to the protection of software, in particular freely distributed 
5 application software, against use without pemnission of the copyright holder; and 
concerns in particular a method of preventing unauthorized utilization of software in a 
computen a method and device for preparing software for the utilization In a computer 
only with a con-esponding authorization; and a method and device for allowing 
authorized utilization of software in a computer which has been prepared according to an 
10 aspect of the invention. 

Piracy copying of software, particulariy software adapted to run on personal computers, 
is an extensive problem to software vendors which annually costs them large amounts of 
money. The conventional methods employed to protect software against unauthorized 
15 utilization by demanding a password for the installation or operation of a specific 
computer program or program package, for example, have not provided sufficient 
security. Thus, an arrangement making it possible to use a certain computer program or 
a computer program package only if the permission of the copyright holder really exists 
would be of great importance. 

20 

Background Art 

Several attempts have already been made to establish arrangements in which simply 
typing the required password is not sufficient to gain access to a program. For example, 
systems have been proposed which require that a special hardware unit is connected to 

25 the computer to make it possible to utilize a given program. This unit may take the fonm 
of a blind plug (also termed "dongle"). for example, which is connected directly to one of 
the input-output terminals of the computer, and containing fixed tables, identity number, 
or the like, stored in an internal memory fronn which information is read upon the request 
of a programmed additional routine included for this purpose in the application program 

30 in question. The unit may also take the form of a card reader station, or the like, in 

which a card Is inserted, the matter stored on the card in principle being similar to that of 
the blind plug above. Usually the checking procedure involves that the additional routine 
of the program makes a direct comparison of the program identity, for example, and a 
corresponding item of information present in the stored table. 

35 

An example of such an arrangement is described In published DE patent application no. 
44 19 115 wherein the matter stored in a chipcard is read, and if the expected content 
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exists, this fact is regarded as being sufficient proof of identity for the use of the 
program. The checking may be done when a program is installed, or during the 
utilization thereof. Published DE patent application no. 42 39 865 discloses a similar 
system which in addition provides an arrangement by which the number of software 
5 installations perfomried are noted, making it possible to limit the number thereof. 

TTie additional routine which must be included in the software constitutes the main 
disadvantage of all such known devices. By simply removing such routines the software 
will operate normally, and the protection against unauthorized utilization would be lost. 

10 Also, during the exchange of data between the processor of the computer and the 
memory of the unit or card, it is possible to observe the infomriation, and as the course 
of this information exchanged is the same each time the program is used, it is possible 
also to reveal the matter stored in the external memory. Even if the contents of the 
memory is encrypted in one way or another, such kind of recurrence across the 

15 communication interface makes it possible to simulate a corresponding hardware unit, for 
example, or "break the code" by means of relatively modest computing power. 

In the arrangement described in published GB patent application no. 2 163 577 some of 
the flaws of the above type of hardware units are avoided by employing certain crypto 

20 techniques, and by accommodating several storage means as well as a processor of its 
own in a tamper-proof housing. The processor in the housing makes use of a decryption 
key which Is stored in the housing, and of instructions which sJso are stored in the 
housing, to decrypt and execute by itself an encrypted application program or program 
module transferred from the host computer to which the housing is connected. 

25 Regarding the crypto technique itself, the arrangement according to GB patent 
application no. 2 1 63 577 uses a so-called DES algorithm (DES - Data Encryption 
Standard, Bureau of Standards. U.S.A.. 1977) for the encryption of the application 
software, and the corresponding inverse DES algorithm for decrypting the same, 
whereby one and the same key is used for both the encryption and the decryption. 

30 Hence, the DES standard is symmetrical, and the security resides only in the key itself. 
Therefore, not to give away this security, the encryption also of the DES key itself is 
proposed in the GB patent application. For this purpose it is used a so-called RSA 
algorithm (RSA - Rivest. Shamir. Adieman) having two different keys, that is, one for the 
encryption and another for the decryption, the deduction of one key from the other being 

35 practically impossible. Hence, the RSA crypto system is an asymmetric, two-key system 
(also termed public-key / private-key crypto system), and in the case of the arrangement 
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according to GB patent application no. 2 163 577, one key only is used which, per se, 
may be known (the public key) to encrypt the DES key while another key which the user 
must not get to know (the private or secret key) is used to decrypt the DES key. The 
latter key, i.e. the secret key, is stored in a memory in the tamper-proof housing and is 
5 fetched by the processor in the housing when needed to decrypt encrypted DES keys, 
each of which belonging to an encrypted application program, for the purpose of being 
able to execute such an application program. 

In the arrangement according to GB patent application no. 2 163 577, however, it is also 
10 possible to monitor the communication between the external unit and the host computer, 
and the course of communication is identical each time the same encrypted program 
module is to be executed. Since complete program modules are encrypted and such 
modules make up a relatively large part of the software, this kind of predictable 
recurrence across the communication interface assists in the identification of respective 
15 program modules which then easily can be separated from the rest of the software, to be 
processed, e.g. in off-line mode, for the purpose of decrypting the encrypted program 
module once and for all. Moreover, external decryption, storage and execution of 
complete application program modules would take an unacceptably long period of time, 
unless the circuits in the housing possess a sufficiently high data processing capacity 
20 and the communication with the host computer from which the program modules 
originate, is very fast. 

An object of the present invention is to provide a crypto arrangement giving suppliers 
and/or proprietors of the software an improved possibility of protecting their product 
25 against unauthorized utilization, and which does not suffer from the drawbacks of prior 
art, in such a manner that the software can be copied and distributed without restrictions, 
but yet not be used unless the necessary permission is present. 

A further object of the invention is to provide a crypto arrangement of a universal nature 
30 which is able to accommodate not only individual software modules but entire program 
packages, wherein permission of use may be assigned at different levels, such as for 
selected parts of a program package. 

These and other objects will appear more clearly from the description below of examples 
35 of preferred embodiments of the present invention as seen in relation with the accompa- 
nying drawings. 
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Disclosure of Invention 

A first general aspect of the present invention relates to a method of preventing 
unauthorized utilization of software in a computer, the method comprising the steps of: 

- encrypting at least a part of said software in accordance with a first algorithm, and 

5 - decrypting the encrypted part of the software in accordance with a second algorithm, 
the second algorithm together with a key to be employed in the decryption of the 
encrypted part of the software being stored in an external unit adapted to be 
connected to said computer, the extemal unit comprising at least a computer readable 
storage medium and a processor of its own, 
10 the method being characterized in that said decryption in accordance with the second 
algorithm is executed by employing a second key stored in said extemal unit, the second 
key being different from a first key employed in the execution of the encryption of said 
part of the software in accordance with the first algorithm. 

15 Another aspect of the present invention relates to a method of preparing software, 
particulariy software intended for free distribution, tor the utilization in a computer only 
with a corresponding authorization, the method comprising encrypting in accordance with 
a first algorithm at least a part of said software which by the utilization in said computer 
is decrypted in accordance with a second algorithm, the method being characterized in 

20 that a key which is employed for said encryption in accordance with the first algorithm, is 
a first key which is different from a second key which is employed in the execution of the 
decryption in accordance with the second algorithm of that part of the software which is 
encrypted in accordance with the first algorithm and first key. 

25 In this second aspect, the invention also relates to a device for the preparation of 

software, particulariy software intended for free distribution, to be utilized in a computer 
only with a corresponding authorization, the device comprising: 

- crypto means effecting the encryption of at least a part of said software in accordance 
with a first algorithm and a first key, and 

30 - an extemal unit adapted to be connected to said computer, the externa) unit at least 
comprising a processor of its own and a computer readable storage medium for 
storing a second algorithm and a key, and being disposed to execute decryption of 
the encrypted part of the software in accordance with said second algorithm and key, 
the device being characterized in that it further comprises generator means to provide 
35 said second algorithm and a second key intended to be employed in said decryption in 
acconjance with the second algorithm, the second key being different from the first key 
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employed by said crypto means in the execution of the encryption of said part of the 
software In accordance with the first algorithm. 

A third aspect of the invention relates to a method of making authorized utilization 
5 possible in a computer, of software, particulariy freely distributed software, which is 
prepared according to a mode of the sea>nd aspect of the invention, the method 
comprising connecting an extemal unit to said computer, the extemal unit at least 
comprising a computer readable storage medium and a processor of its own, and a 
second algorithm and a key to be employed in the decryption of the encrypted part of 

10 the software being stored in said extemal unit. According to the invention the method is 
characterized in that when the computer in the execution of that part of the software 
which is encrypted in accordance with the first algorithm encounters a call sequence, or 
a similar Instruction, causing a jump to a corresponding entry point to said added object 
code, this object code is utilized by the computer to establish a communication channel 

15 to the extemal unit through which channel the encrypted part of the software is 

transferred in a first transfer session to the extemal unit to be decrypted by the unit's 
own processor in accordance with a second algorithm and a second key both of which 
being stored in said extemal unit, this second key being different from the first key 
employed in the execution of the encryption of said part of the software in accordance 

20 with the first algorithm, and the decrypted software part then being processed in the 
external unit and the result transferred in a second transfer session the opposite 
direction through the communication channel for the further utilization in the computer. 



In this third aspect the invention also relates to a device for making authorized utilization 
25 of software possible, particulariy freely distributed software, prepared by means of a 
device according to the second aspect of the invention, the device comprising a 
computer adapted to serve as a host computer for an extemal unit which at least 
comprises a processor of its own and a computer readable storage medium, and being 
intended to be connected to the host computer for the communication therewith. 
30 According to the invention this device is then characterized in that said extemal unit 
comprises decryption means adapted to execute decryption in accordance with said 
second algorithm and said second key produced by said generator means, the second 
key being different from the first key used by said crypto means in the execution of the 
encryption of said part of the software in accordance with the first algorithm. 



wo 97/03398 PCT/NO96/00171 

6 

By the methods and devices according to the invention an anangement is achieved 
which makes it utmost difficult to use software, such as In the form of a computer 
program or a computer program package, if the permission of the copyright holder does 
not exist. As it appears from the description below and the other patent claims, this 
5 hinderance to the unauthorized use according to the invention may also be made even 
more secure, so that it may be neariy impossible to utilize software which is processed 
according to such further features of the invention, if the necessary authorization is 
missing. 



10 Brief Description of Drawings 

In the description below reference is made to appended drawings, on which: 
Rgure 1 illustrates a prefen-ed hardware configuration according to the invention, 
Rgure 2 is a simplified general software diagram according to the invention, 
Rgure 3 illustrates schematically how a common command or execution file (.EXE file) 
15 is generated without encryption, 

Figures 4 and 5 illustrates schematically how encryption on the level of source code can 

be carried out according to the invention, 
Rgure 6 illustrates schematically the partitioning of software onto a magnetic storage 
disk and a random access memory (RAM), respectively, 
20 Figure 7 illustrates schematically the utilization of protected software in a computer. 
Figure 8 shows an example of an encryption process of the type shown in Figures 4 
and 5, 

Figure 9 illustrates schematically the utilization of protected software in a computer. 
Rgure 10 illustrates schematically an application area including access checking or 
25 authentication, and 

Figure 11 is a flow chart schematically illustrating a course of processes including 

encryption-decryption and scrambling-descrambling according to a preferred 

embodiment of the invention. 



30 Description of Preferred Embodiments 

First it is referred to Figure 1 which illustrates a preferred hardware configuration of the 
invention and which shows a computer having the form of a workstation or personal 
computer (PC) serving as a host computer according to the invention. In the figure, an 
external unit according to the invention is shown to be in the form of a card reader or 
35 processor, particularly for Smart Cards, provided with a commercially available integrated 
microprocessor, e.g. of the CCA12103 type, the unit being included in the computer 
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shown or disposed in a separate unit of equipment connected to the computer by a 
serial or parallel connection. 



Figure 1 also illustrates that now the secured software may be distributed through 
5 different types of data networks to which the computer may establish a connection, such 
as wide area networks (WAN), local area networks (LAN), and, in particular. Internet. 
Also, the software may in deed, as usual, be distributed on flexible disks and/or CD- 
ROMs (readable only, compact laser disks). In any case, the software may be copied 
and installed without restrictions. 

10 

Since the software is protected against unauthorized utilization, there is no need for any 
kind of copy protection of the software as the case othenwise often may be. Here, the 
authorization is embedded in the Smart Card, and it is not available to anyone else but 
the supplier of the software who himself installs the necessary decryption algorithms and 
15 the keys on the card. Hence, the permit to use a certain computer program is found on 
the card, not in the respective program, or another part of the software. 

From fig. 2 showing a simplified general diagram, it appears that an arrangement 
according to the invention can be seen to comprise: 
20 1. software protected against unauthorized utilization (the protection, however, not 
interfering with the copying thereof), 

2. a Smart Card (or the like) holding the algorithm and the key for the decryption of 
the software in question, and 

3. special software for the communication between the protected software (1) and the 
25 Smart Card (2) (i.e. the added object code specified in the claims). 



The protection is provided by the insertion, in different locations of the software, of 
program calls to the Smart Card, or to special software at the disposal to the card, 
thereby obtaining the information necessary to proceed correctly in the execution of the 
30 protected program. For example, this infonnation may be certain parameters which are 
used when the program is executed, and which is determined by those who wish to 
protect their software. Because they are necessary for the software to work properly, 
such program calls cannot be removed. 

35 The interaction of the protected program with the Smart Card is controlled by the special 
software (object code) entered into the data library of the program when the original 
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program is encrypted. This special software may also provide for scrambling of the 
communication between the computer and the Smart Card. 

Figure 3 shows how a common command or execution file (,EXE file) is generated 
5 without encryption; and Figures 4 and 5. each in their own manner, depict how 
encryption can be carried out on the source code level according to the invention. 

Figure 6 illustrates that the software itself is placed on a magnetic storage disk, whereas 
the special program (object code or data library) is supplied to the random access 
10 memory (RAM) of the computer. 

Figures 7 and 9 illustrate such processes which take place when the protected software 
is utilized in a computer. 

15 Figure 8 shows an example of an encryption process of the type shown in Figures 4 and 
5. Here, it is assumed that the source code is present in a high level programming 
language, such as Pascal, C, Modula, or the like. It is the source code that is being 
encrypted and thus protected against so-called unauthorized use. In the source code a 
few parameters are selected which are encrypted by means of an encryption function g. 
20 For example, an expression, x; = y + 10, present in a command in the unprotected 
source code can be represented as: 
C: = decrypt (g(10) + t), 
x: = y+(C'T)* 
where: g(10) is an encrypted parameter, and 
25 Tis a variable, the random value of which, in this case, being fetched from the 

Smart Card. 

To obtain a correct value of xthe protected program must "anive at" a value of C, which 
must be equal 10 + 7. The decrypt program is located in the "spesial software" (the 

30 added object code) which constitutes a part of the protected software (see Figure 5). 
This special software also comprises scrambling and descrambling functions, which here 
are denoted f and as well programs for the communication with the Smart Card (see 
Figure 7). In the communication with the Smart Card, the functions /and employ 
keys which are fetched from the Smart Card, the Smart Card itself containing: 

35 - a number generator to produce a random value of variable T located in the protected 
software. 
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- a secret key for the decryption function g'\ 

- an algorithm for the decryption function g'\ and 

- one or more keys for functions ^and 

5 It should be noted that it is important that the encryption function g and decryption 

function g*' represent a public key crypto system not being symmetric. This means that 
the encryption function g employs a public key which may be known, this key, however, 
not being sufficient to arrive at the decryption function g'^ (neither its algorithm, nor its 
key). Thus, the algorithm and key for the decryption function g*' is placed on the Smart 
10 Card, from which they are never transmitted. 

It is required that the functions f. ^^ g, g'^ are commutative (i.e. they are interchange- 
able without altering value). Here this means that they must have the following property: 

15 rUg''(f(g(x))))=x, 

Upon the utilization in a computer of a program protected in this way. the execution of 
the program starts as usual (Figure 7). Through the communication with the Smart Card 
a value of variable Tand the keys for functions fog are entered into the software. 

20 The execution of the program then continues as usual. At the moment the execution 
reaches an encrypted parameter {(g(10) in the example shown) the value (g(10) + T)) is 
sent to the special software which further conveys f(g(10) -hT) -T)\q the Smart Card. In 
the Smart Card, the value of g'U(fO) + T) - T) \s calculated, and this value is retumed to 
the special software. By means of the special software fUg'UCfO) + T) • T))) is then 

25 calculated, this being equal to x and x + 7; and this result is supplied to the protected 
program as parameter C for the utilization in the program. 

Having this kind of encryption-decryption arrangement according to the invention, the 
following advantages and possibilities are realized: 
30 - Great flexibility by the use of Smart Cards. 

- The licensing of Smart Cards (i.e. users) can be provided by the importers or agents 
engaged by software producers. A Smart Card may then contain licenses, or per- 
missions, at several levels for various software packages which have the same 
authentication format and algorithms. 

35 - A first level of encryption employing an unsymmetric, dual key encryption arrangement 
(public key / private key crypto system), such as the RSA crypto system, whereby the 
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public key is available only to the software producer, and the private key is a secret 
key which the manufacturer of the Smart Card enters into the read only memory 
(ROM) of the Smart Card according to specifications given by the software producer. 
The private key may be different for each program package. 
5 - An unsymmetric, encrypted authentication key which is transferred to the Smart Card 
when the njnning of protected software begins and which Is decrypted in the Smart 
Card by means of a private key no. 0 to initiate an authentication process in the Smart 
Card. 

- Encryption at the level of source code, making the an-angement independerrt of the 
10 operating system. By encrypting small parts, or fragments, only of files, such as of 

command files, it is difficult to identify those parts of the software being encrypted for 
the purpose of attacking such parts in one way or another. Also, the decryption 
algorithms and keys are easily entered onto the Smart Card. 

- A second level of encryption whereby the communication between the host computer 
15 and Smart Card is such that it becomes difficult to trace anything making sense from 

that communication by the logging thereof. The algorithms to be employed are 
located both in the protected software and the Smart Card, and both the encryption 
keys and the decryption keys are located in the Smart Card, i.e. hidden to the user. 
The encryption algorithm and key may be different for various types of software. 

20 

Figure 10 serves to demonstrate that the application area of the arrangement according 
to the invention is extendable also to cover access checking, or authentication, for 
example, as further possibilities also may exist. In such an enibodiment of the invention, 
the software to be protected may be provided with an authentication key encrypted by 
25 employing a so-called public key and an identification number for the software package 
in question. Then, the external unit, such as the Smart Card, would contain decryption 
algorithms which preferably are mask programmed, and a private key no. 0 (in the ROM) 
to be used to decrypt the authentication key, as well as an access or authentication table 
which may be configured as the table shown below. 
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PID 


AcL 


PK 


(Program I.D. No.) 


(Access Level) 


(Private Key) 


PID (1) 


AcL (1) 


PK (1) 


PID (2) 


AcL (2) 


PK (1) 


PID (3) 


AcL (3) 


PK (3) 








PID(n) 


AcL (n) 


PK (n) 



10 In the table, PID denotes the identity number of the software, such that different 

programs are assigned dissimilar identity numbers which also may contain the version 
number of the respective software products, or the like, for example. AcL denotes the 
access level or status, such as: 

- two different levels, namely access permitted and access not permitted, 
15 - a limited number of times the respective program can be run, 

- a time limit for the use of a program, e.g. a permission expiration date, 

- access to a shortened variant only of the program, e.g. a so-called demo-variant. 
The enthes in the access level column, AcL, of the table are amendable by the importer 
or agent of the software product, for example. 

20 

In the private key column, PK the software producer specifies the secret keys to be 
employed in the decryption of the encrypted fragments dependent on the identity 
number, PID, of the software. The secret keys are mask programmed in the Smart Card 
and are not available to anyone else. 

25 

Figure 11 is a flow chart schematically illustrating a principally complete course of 
processes according to a preferred embodiment of the invention, the steps being: 

- encryption of the source code (g1, k1). 

- scrambling of the encrypted data (g3, k3), 

30 - transfer of the scrambled encrypted data to the extemal unit and descrambling thereof 
(g4, k4). 

- decryption of the transferred and descrambled data {g2, k2), 

- processing of the decrypted data, and scrambling of the result (g5, k5), 
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- transfer of the scrambled result to the host computer and descrambiing thereof 
(g6. k6). and 

- output of the decrypted result for further utilization. 



5 In the examples shown of embodiments of the invention, a Smart Card constitutes the 
preferred implementation of the extemal units indicated in the claims below. This is 
quite simply because the Smart Card technology is considered as being the most 
"tamper-proof" protection of the algorithms, keys, a.s.o.. which necessarily have to be 
stored in the extemal unit, or in a separate article, according to the annexed claims. The 

10 small number of manufacturers of such cards in the wortd, and i.a. the large values 
being at disposal by the use of such cards, in particular cards having the form of 
payment transaction cards, contribute strongly to the fact that the knowledge required to 
falsify such Smart Cards, will not be readily available to persons having dishonest 
intentions. However, this does not impede a possible development of new techniques 

15 which may be just as well, or better, suited for the purpose of the present invention. 
Therefore, the patent claims are meant also to cover such future extemal units and 
separate articles indicated in the claims which may provide at least the same degree of 
security as the Smart Card now preferred. 
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CLAIMS 



1. A method of preventing unauthorized utilization of software in a computer, the 
method comprising the steps of: 

5 - encrypting at least a part of said software in accordance with a first algorithm, and 
- decrypting the encrypted part of the software in accordance with a second algorithm, 
the second algorithm together with a key to be employed in the decryption of the 
encrypted part of the software being stored in an external unit adapted to be 
connected to said computer, the external unit comprising at least a computer readable 
10 storage medium and a processor of its own, 

characterized in that said decryption in accordance with the second 
algorithm (g2) is executed by employing a second key (k2) stored in said extemai unit, 
the second key being different from a first key (k1) employed in the execution of the 
encryption of said part of the software in accordance with the first algorithm (g1). 

15 

2. A method according to claim 1 , 

characterized in that the encryption of said part of the software In 
accordance with the first algorithm {g1) is executed on the source code of the respective 
software prior to compiling and linking, or during similar processing steps producing an 
20 executable program, and at the same time adding to the data library of the executable 
program an object code with respect of the communication with the external unit. 

3. A method according to claim 1 or 2, 

charcterized in that said decryption of the encrypted part of the software 
25 which is executed in accordance with the second algorithm (g2). takes place when the 
computer in the execution of said software encounters a call sequence, or a similar 
instruction, causing a jump to a corresponding entry point to said added object code, 
whereby a communication channel is established between the computer and the extemai 
unit by utilization of the added object code, through which communication channel the 
30 encrypted part of the software is transferred in a first transfer session to the extemai unit 
to be decrypted by the unit's own processor, the decrypted software part then being 
processed in the extemai unit and the result transferred in a second transfer session the 
opposite direction through the communication channel for the further utilization in the 
computer. 
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4. A method according to daim 3, 

characterized in that the method further comprises: 

- a step wherein said part of the software which is encrypted in accordance with the 
first algorithm (g1), prior to said first transfer session, is caused to be scrambled 

5 according to a third aigorithm (g3) and a third key (kS), said third key (kS) being 

based on a number which, for the respective transfer session, is selected randomly 
and preferably produced by the external unit, and 

- a step wherein said part of the software which is encrypted in accordance with the 
first aigorithm (g1), and which is scrambled according to said third algorithm (g3) and 

10 transferred to the extemal unit in said first transfer session, is caused to be 

descrambled in the extemal unit in accordance with a fourth aigorithm (g4) and a 
fourth key (k4). said fourth key (k4) being based on said randomly selected number 
for said third key (k3), and said fourth algorithm (g4) being the inverse algorithm of 
said third algorithm (g3). 

15 

5. A method according to claims 3 and 4, 
characterized in that the method further comprises: 

- a step wherein said result produced in the external unit on the basis of that part of the 
software which is decrypted in accordance with said second algorithm (g2). prior to 

20 said second transfer session, is caused to be scrambled according to a fifth algorithm 
(gS) and a fifth key (k5), said fifth key (k5) being based on a number which, for the 
respective transfer session, is randomly selected and preferably provided by the 
extemal unit, and 

- a step wherein said result produced in the extemal unit on the basis of that part of the 
25 software which is decrypted in accordance with said second algorithm {g2). and which 

is scrambled according to the said fifth algorithm (g5) and transferred to the computer 
in said second transfer session, is caused to be descrambled in the computer in 
accordance with a sixth algorithm (g6) and a sixth key (k6). said sixth key (k6) being 
based on said randomly selected number for said fifth key (k5), and said sixth 
30 algorithm (g6) being the inverse algorithm of said fifth algorithm (g5). 



6. A method according to claims 4 and 5. 

characterized in that said randomly selected number for the third and fourth 
keys (k3, k4) and said randomly selected number for fifth and sixth keys (k5 , k6) being 
35 the same number. 
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7. A method of preparing software, particularly software intended for free distribution, 
for the utilization in a computer only with a corresponding authorization, the method 
comprising encrypting in accordance with a first algorithm at least a part of said software 
which by the utilization in said computer Is decrypted in accordance with a second 

5 algorithm, 

characterized in that a key which Is employed for said encryption in 
accordance with the first algorithm (g1), is a first key (k1) which is different from a 
second key (k2) which Is employed in the execution of the decryption in accordance with 
the second algorithm (g2) of that part of the software which Is encrypted in accordance 
10 with the first algorithm and first key. 

8. A method according to claim 7, 

characterized in that said encryption of said part of the software in 
accordance with the first algorithm (g1) is executed on the source code itself for the 
15 respective software prior to compiling and linking to an executable program, or in similar 
processing steps producing an executable program, and at the same time adding an 
object code to the data library of the executable program with the respect of the 
communication with an extemal unit adapted to be connected to said computer. 

20 9. A method according to claim 7 or 8, 

characterized in that in said compiling and/or linking of the source code to 
an executable program, or in similar processing steps producing an executable program, 
call sequences, or similar Instructions, are inserted which in the execution in a computer 
of the executable program causes a jump to a corresponding entry point to said added 

25 object code, the object code being used to establish a communication channel between 
the computer and an extemal unit in which said decryption takes place in accordance 
with the second algorithm (g2). 

10. A method according to claim 9, 
30 characterized in that it further comprises a step wherein a third key (k3) is 
inserted in said part of the software which is encrypted in accordance with the first 
algorithm (g1), said third key (k3) being intended to be employed in a third algorithm (g3) 
for the scrambling of said part of the software prior to its transfer to said extemal unit. 
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11. A method of making authorized utilization possible in a computer, of software, 
particularly freely distributed software, prepared according to claim 9, the method 
comprising connecting an external unit to said computer, the external unit at least 
comprising a computer readable storage medium and a processor of its own, and a 

5 second algorithm and a key to be employed in the decryption of the encrypted part of 
the software being stored in said external unit, 

characterized in that when the computer in the execution of that part of the 
software which is encrypted jn accordance with the first algorithm (g1) encounters a call 
sequence, or a similar instnjction, causing a jump to a corresponding entry point to said 

10 added object code, this object code is utilized by the computer to establish a communi- 
cation channel to the external unit through which channel the encrypted part of the 
software is transferred in a first transfer session to the external unit to be decrypted by 
the unit's own processor in accordance with a second algorithm (g2) and a second key 
(k2) both of which being stored in said external unit, this second key (k2) being different 

15 from the first key (k1) employed in the execution of the encryption of said part of the 

software in accordance with the first algorithm (g1), and the decrypted software part then 
being processed in the external unit and the result transferred in a second transfer 
session the opposite direction through the communication channel for the further 
utilization in the computer. 

20 

12. A method according to daim 11. which makes authorized utilization possible of 
software prepared according to claim 10, 

characterized in that: 

- prior to said first transfer session to the connected external unit, that part of the 

25 software which is encrypted in accordance with the first algorithm (g1) is caused to be 
scrambled according to said third algorithm (g3) and said third key (k3), the third key 
(k3) being based on a number randomly selected for the respective transfer session 
and preferably provided by the extemal unit, and 

- said part of the software which is encrypted in accordance with the first algorithm 

30 (g1). and which is scrambled according to said third algorithm (gS) and transfen-ed to 
the extemal unit in said first transfer session, is caused to be descrambled in the 
external unit in accordance with a fourth algorithm (g4) and a fourth key (k4), said 
fourth key (k4) being based on said randomly selected number for said third key (k3), 
and said fourth algorithm (g4) being the inverse algorithm of said third algorithm (g3). 
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13. A method according to claim 12, 

characterized in that the method further comprises: 

- a step wherein said result produced in the extemal unit on the basis of that part of the 
software which is decrypted in accordance with said second algorithm (g2). prior to 

5 said second transfer session, is caused to be scrambled according to a fifth algorithm 
(g5) and a fifth key (k5), said fifth key (k5) being based on a number randomly 
selected number for the respective transfer session and preferably provided by the 
external unit, and 

- a step wherein said result produced in the extemal unit on the basis of that part of the 
10 software which is decrypted in accordance with said second algorithm (g2), and which 

is scrambled according to said fifth algorithm (g5) and transfen-ed in said second 
transfer session to the computer, is caused to be descrambled in the computer in 
accordance with a sixth algorithm (g6) and a sixth key (k6), said sixth key (k6) being 
based on said randomly selected number for said fifth key (k5). and said sixth 
15 algorithm (g6) being the inverse algorithm of said fifth algorithm (g5). 

14. A method according to any preceding claim. 

characterized in that said first and second algorithms (g1. g2) and said first 
and second keys (k1 , k2) are determined in accordance with an unsymmetric, dual key 
20 crypto arrangement {public-key / private-key crypto system), such as RSA crypto system, 
the first key (k1) preferably being the known key (public key) and the second key (k2) 
being the secret key (private key) of the crypto arrangement. 

15. A method according to any preceding claim, 

25 characterized in that said part of the software to be encrypted in accordance 
with said first algorithm (g1) is selected by being fully decisive for the use of the 
respective software by a computer, and preferably comprising one or more instructions in 
a command or execution file, such as in a .COM or .EXE file. 



30 16. A device for the preparation of software, particularly software intended for free 
distribution, to be utilized in a computer only with a corresponding authorization, the 
device comprising: 

- crypto means effecting the encryption of at least a part of said software in accordance 
with a first algorithm and a first key, and 
35 - an extemal unit adapted to be connected to said computer, the external unit at least 
comprising a processor of its own and a computer readable storage medium for 
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Storing a second algorithm and a key, and being disposed to execute decryption of 
the encrypted part of the software in accordance with said second algorithm and key. 
characterized in that the device further comprises generator means to 
provide said second algorithm (g2) and a second key (k2) intended to be employed in 
5 said decryption in accordance with the second algorithm (g2), the second key being 
different from the first key (k1 } employed by said crypto means in the execution of the 
encryption of said part of the software in accordance with the first algorithm (g1). 

17. A device according to claim 16. 

10 characterized in that said crypto means is adapted to execute said 

encryption of said part of the software in accordance with the first algorithm {g1) on the 
source code itself of the respective software before it is compiled and linked, or in any 
other way is transfomned to an executable program, and that said crypto means at the 
same time effects the addition to the data library of the executable program, of an object 

15 code with respect of the communication with said extemal unit 

18. A device according to claim 16 or 17, 

characterized in that said crypto means is adapted to insert during said 
compiling and/or linking of the source code to an executable program, or during a similar 
20 processing producing an executable program, call sequences, or similar instructions, 
which in the execution of the executable program in said computer provide for a jump to 
a con-esponding entry point to said added object code which the computer then utilizes 
to establish a communication channel to the connected extemal unit. 

25 19. A device according to claim 18, 

characterized in that said crypto means is adapted to enter into said part of 
the software which is encrypted in accordance with the first algorithm (g1), a third key 
(k3) intended to be employed in a third algorithm (g3) for scrambling of said part of the 
software prior to its transfer to said extemal unit. 

30 

20. A device for making authorized utilization of software possible, particuiariy freely 
distributed software, prepared by means of a device according to claim 1 6, the device 
comprising a computer adapted to sen^e as a host computer for an extemal unit which at 
least comprises a processor of its own and a computer readable storage medium, and 
35 being intended to be connected to the host computer for the communication therewith. 
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characterized in that said external unit comprises decryption means adapted 
to execute decryption in accordance with said second algorithm (g2) and said second 
key (k2) produced by said generator means, the second key being different from the first 
key (k1) used by said crypto means in the execution of the encryption of said part of the 
5 software in accordance with the first algorithm (g1). 



21. A device acx;ording to claim 20, 

characterized in that said decryption means is adapted to execute said 
decryption in accordance with the second algorithm (g2) when said host computer in the 

10 execution of that part of the software which is encrypted in accordance with the first 
algorithm (g1) encounters a call sequence, or the like, which provides for a jump to a 
corresponding entry point to sard added object code, whereby the host computer then 
uses this object code to establish a communication channel to the external unit through 
which the host computer effects that the encrypted part of the software is transferred in a 

15 first transfer session to the extemal unit and subjected to said decryption, and that said 
extemal unit's own processor is adapted to process the decrypted part of the software 
and effect that the result is transferred the opposite direction in a second transfer 
session through the communication channel for the further utilization of the result in the 
computer. 

20 

22. A device according to claim 21, and being adapted to make authorized utilization 
possible of software prepared by means of a device according to claim 1 9, 
characterized in that the extemal unit comprises descrambling means to 
descramble in accordance with a fourth algorithm (g4) and a fourth key (k4) said part of 

25 the software being encrypted in accordance with the first algorithm (g1), and which, prior 
to the first transfer session, is scrambled by the host computer according to said third 
algorithm (g3) and transferred to the extemal unit in said first transfer session, said third 
key (k3) used by the host computer in this scrambling being based on a number 
randomly selected for the respective transfer session and preferably provided by a 

30 number generator in the extemal unit, and said fourth key (k4) used by the descrambler 
means in the extemal unit being based on the same randomly selected number as that 
for said third key (k3), said fourth algorithm (g4) being the inverse algorithm of said third 
algorithm (g3). 
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23. A device accxDrding to claim 21 or 22, 

characterized in that the external unit further comprises scrambler means to 
scramble, prior to the second transfer session, in accordance with a fifth algorithm (g5) 
and a fifth key (k5) said result produced in the external unit on the basis of that part of 

5 the software which the unit has decrypted in accordance with said second algorithm {g2), 
said fifth key (k5) used by the scrambler means in this scrambling being based on a 
number which is randomly selected for the respective transfer session and preferably 
produced by a number generator in the extemal unit, the host computer being capable of 
descrambling in accordance with a sixth algorithm (g6) and a sixth key (k6) said result 

10 produced in the extemal unit for further utilization in the host computer, the result prior to 
said second transfer session being scrambled according to said fifth algorithm (g5) by 
means of the scrambler means in the extemal unit and transferred to the computer in the 
second transfer session, said sixth key (k6) being based on the same randomly selected 
number as that for the fifth key (k5), and said sixth algorithm (gS) being the inverse 

15 algorithm of said fifth algorithm (g5). 

24. A device according to any of claims 16 to 23, 

characterized in that said extemal unit comprises adapter means and a 
separate article, preferably being made tamper-proof, in or on which electronic circuits 

20 are disposed which at least comprise the extemal unit processor and computer readable 
memory and which is arranged such that a communication channel can be established 
between the circuits of the separate article and said host computer when the ariide is 
inserted into a slot in the adapter means, or in any other way is connected to the 
adapter means, said second algorithm {g2) and said second key (k2) preferably being 

25 stored in such a way in said memory that they cannot be read by other means than the 
processor of the separate article and never t}ecome available outside the separate 
article. 

25. A device according to claim 24. 

30 characterized in that said separate article takes the form of a smalt 

substrate plate, such as a plastic card, having the size of a usual credit card, or Smart 
Card, the adapter means then comprising a card reader station for said substrate plate 
which optionally may be incorporated with the host computer or a peripheral unit 
connected thereto. 
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26. A device according to claim 24, 

characterized in that said separate article takes the form of an electronic 
circuit card adapted to be placed in a card position or slot provided in the host computer 
for extension cards, the circuit card, in the case of a portable host computer, being 
5 configured in accordance with one of the standard designs used for such insertabie 
cards, such as the PCMCIA standard. 

27. A device according to claim 24, 

characterized in that said separate article takes the form of an electronic 
10 blind plug, or the like, said adapter means then comprising an input-output terminal of 
the host computer. 
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Fig.9. 
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